$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: E9tEEq6US9/2xHNq7hovRNyyDqDhULRlsAtDZ6X7ZGs= Subject key identifier: 7E:FA:86:D0:95:3F:41:E7:15:22:D4:DC:6E:46:89:FD:31:DF:96:EA Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 0920 Signing time: Tue 04 Nov 2025 20:21:51 +0000 Manifest this update: Tue 04 Nov 2025 20:21:50 +0000 Manifest next update: Tue 11 Nov 2025 20:21:50 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: IuAfQcJB/scUO23rPnIbW2HrF3YJhk+w2q664vizghM=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: ASBYl23bkyFf4r9vJSPXkAo/YYzd1cAPrmJW3FNKskU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2344 (0x928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Nov 4 20:21:50 2025 GMT Not After : Nov 11 20:21:50 2025 GMT Subject: CN=690a605f-b350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:32:ef:ce:b4:51:18:d4:e5:9c:39:83:08: e2:15:9e:7a:d3:a8:a8:c7:80:b3:c9:4f:80:6a:21: 4a:93:8a:8e:28:4f:d4:9d:dc:ea:1c:fd:f7:3c:b3: 93:f6:1b:fe:b4:f3:eb:92:99:ea:21:f6:66:25:8c: 78:ba:ad:d5:e5:c8:57:86:f5:14:d3:11:cb:f8:2e: b8:bd:1d:84:83:4c:0d:08:5d:1a:2e:0e:32:0b:26: a9:45:d6:85:5e:3a:e8:d5:55:25:38:92:34:70:ad: 12:8e:21:59:25:4b:fb:0b:4d:65:18:35:0e:4e:32: 5e:65:c2:26:09:cd:32:f5:70:a0:6b:54:38:4d:cd: 17:ea:e3:56:bd:a9:34:a7:3b:1f:fd:9a:b7:f3:bc: 22:c9:49:b8:35:91:ab:e8:72:80:a5:32:fb:92:f1: f5:5f:0c:6e:41:31:60:b9:31:c0:72:4e:98:55:ef: 3c:21:91:21:30:7e:f2:0f:3f:6e:f4:56:97:94:71: fa:31:32:38:93:34:a7:6f:29:39:b0:8e:0e:32:46: 41:4b:7c:b7:46:27:8d:78:c3:78:11:b9:0d:0d:b3: 50:ac:69:40:27:85:18:02:d8:4c:3e:51:07:b5:af: 20:a4:f5:80:20:f9:9a:ad:db:c0:05:df:84:c6:6b: cb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FA:86:D0:95:3F:41:E7:15:22:D4:DC:6E:46:89:FD:31:DF:96:EA X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:00:12:f3:ad:18:64:f4:6a:46:ba:19:78:6c:49:05:13:41: 5c:27:94:7d:de:a4:51:9b:23:14:6d:4c:4b:68:3e:5b:c9:bb: e7:cc:b2:ec:3f:19:9a:10:88:4a:cd:d3:6f:a6:65:01:b8:b0: 55:83:04:83:55:7b:80:68:92:c6:00:75:6c:66:74:30:ca:bd: d2:1e:d9:74:c3:0f:e1:d1:3f:88:c1:64:29:b2:0f:5c:0d:54: a0:43:65:0d:30:fa:57:48:f8:29:7d:a9:48:7c:e4:7e:35:44: 89:05:9e:34:02:3d:fe:1f:0d:ab:05:56:1a:2d:0e:55:40:d1: cc:a3:73:a1:9d:dc:50:bf:24:56:d6:28:87:d9:d8:20:a6:85: 86:bf:d6:1e:69:86:13:32:0d:44:8f:a2:d1:7a:25:ad:51:fe: cc:60:0f:d3:88:f5:5e:37:6f:93:15:9f:a7:ba:18:cc:8c:9e: c0:83:58:5a:42:c0:37:00:b3:22:ee:e5:15:5a:3d:6f:32:aa: f9:eb:6f:98:6f:0f:cc:ab:b0:38:32:da:9e:2e:fa:34:17:d0: d9:f7:55:33:a5:a0:1d:ea:93:eb:1c:9c:dd:63:45:f5:ba:ae: 7d:e8:f0:2d:96:09:59:9d:e3:4d:58:16:1c:1c:92:2e:58:13: 64:e0:f8:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUxMTA0MjAyMTUwWhcNMjUxMTExMjAyMTUwWjAYMRYwFAYD VQQDEw02OTBhNjA1Zi1iMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaUy7860URjU5Zw5gwjiFZ5606iox4CzyU+AaiFKk4qOKE/UndzqHP33PLOT 9hv+tPPrkpnqIfZmJYx4uq3V5chXhvUU0xHL+C64vR2Eg0wNCF0aLg4yCyapRdaF Xjro1VUlOJI0cK0SjiFZJUv7C01lGDUOTjJeZcImCc0y9XCga1Q4Tc0X6uNWvak0 pzsf/Zq387wiyUm4NZGr6HKApTL7kvH1XwxuQTFguTHAck6YVe88IZEhMH7yDz9u 9FaXlHH6MTI4kzSnbyk5sI4OMkZBS3y3RieNeMN4EbkNDbNQrGlAJ4UYAthMPlEH ta8gpPWAIPmardvABd+ExmvLUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH76htCV P0HnFSLU3G5Gif0x35bqMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpABLzrRhk9GpGuhl4bEkFE0FcJ5R93qRRmyMUbUxLaD5bybvnzLLs PxmaEIhKzdNvpmUBuLBVgwSDVXuAaJLGAHVsZnQwyr3SHtl0ww/h0T+IwWQpsg9c DVSgQ2UNMPpXSPgpfalIfOR+NUSJBZ40Aj3+Hw2rBVYaLQ5VQNHMo3OhndxQvyRW 1iiH2dggpoWGv9YeaYYTMg1Ej6LReiWtUf7MYA/TiPVeN2+TFZ+nuhjMjJ7Ag1ha QsA3ALMi7uUVWj1vMqr562+Ybw/Mq7A4MtqeLvo0F9DZ91UzpaAd6pPrHJzdY0X1 uq596PAtlglZneNNWBYcHJIuWBNk4PiH -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:21 2025 by rpki-client